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Abstract 

We present a recursive minimal polynomial theorem for finite sequences over 
a commutative integral domain D. This theorem is relative to any element of D. 
The ingredients are: the arithmetic of Laurent polynomials over D, a recursive 
'index function' and simple mathematical induction. Taking reciprocals gives a 
'Berlekamp-Massey theorem' i.e. a recursive construction of the polynomials arising 
in the Berlekamp-Massey algorithm, relative to any element of D. The recursive 
theorem readily yields the iterative minimal polynomial algorithm due to the author 
and a transparent derivation of the iterative Berlekamp-Massey algorithm. 

We give an upper bound for the sum of the linear complexities of s which is 
tight if s has a perfect linear complexity profile. This implies that over a field, both 

2 

iterative algorithms require at most 2|_^J multiplications. 

Keywords: Berlekamp-Massey algorithm; Laurent polynomial; minimal 
polynomial; recursive function. 



1 Introduction 

1.1 The Berlekamp-Massey (BM) Algorithm 

The BM algorithm determines a linear recurrence of least order L > which generates 
a given (finite) sequence s of length n > 1 over a field F, [13]. It is widely used in 
Coding Theory, Cryptography and Symbolic Computation. There are also connections 
with partial realization in Mathematical Systems Theory; see [TB"l Introduction] and the 
references cited there. For an exposition based on [13], see [22| Section 9.5]. 

However, 'The inner workings of the Berlekamp-Massey algorithm can appear some- 
what mysterious', [3j p. 187] and the extended Euclidean algorithm is usually preferred as 
'It is much easier to understand', [El p. 355]. For a recent example where the extended 
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Euclidean algorithm is regarded as 'simpler to understand, to implement and to prove', 
see [2]. 

There have been a number of derivations of the BM algorithm for sequences over a 
field, such as [31 Chapter 7] and [9], which uses Hankel matrices. A similar approach to [9] 
appeared in [11]; this uses Kronecker's Theorem on the rank of Hankel matrices and the 
Iovidov index of a Hankel matrix. We do not know if [llj applies to finite fields. Another 
approach [8] uses the Feng-Tzeng algorithm pE]. For references relating the BM and 
Euclidean algorithms, see [T8~| Introduction] and the references cited there. A recursive 
version of the BM algorithm (based on splitting a sequence and recombining the results) 
appeared in [HJ p. 336]. 



1.2 Linear Recurring Sequences via Laurent Series 

The conventional approach to linear recurring sequences indexes them by the non-negative 
integers and uses reciprocals of polynomials as characteristic functions; see [12], [13] or 
any of the standard texts. This complicates their theory. 

We took a non-standard, algebraic approach in p2], [20] (an expository version of 
|18j): use the field F[[x _1 ,x] of F-Laurent series in x~ l (the case F = M is widely used in 
Mathematical Systems Theory) to study linear recurring sequences. For us, a sequence 
is indexed by 1, 2, . . . We began with F[[x _1 ,x] as standard F[[x _1 , x]-module. Later we 
realized that it was enough for F to be a commutative unital integral domain D and used 
the decomposition 

D[[x~ l , x] = x- l D[[x- 1 ]] © D[x). 

The action of D[x] on x _1 -D[[x -1 ]] is obtained as follows: project multiplication (in 
D[[x _1 ,x]) of an element of D[x] and an element of x _1 D[[x -1 ]] onto the first summand. 
One checks that this makes £ _1 -D[[a; _1 ]] into a _D[a;]-module. Linear recurring sequences 
are then the torsion elements in a natural .D [a;] -module. For any sequence s, we have its 
annihilator ideal Ann(s); it elements are the 'annihilating polynomials' of s and are defined 
by Equation ([2]). Strictly speaking, s satisfies a linear recurrence relation if Ann(s) 7^ {0} 
and is a linear recurring sequence if it has a monic annihilating polynomial. 

When D is a field, Ann(s) is generated by a unique monic annihilating polynomial 
of s, the minimal polynomial of s (rather than the conventional reciprocal of a certain 
characteristic polynomial multiplied by a power of x). In [251 Section IIA @, [D Definition 
2.1] and [26l Definition 2.1], the definition of a linear recurring sequence sq,s\,... is 
equivalent to expanding the left-hand side of Equation ([2]) and replacing d + 1 < j by 
d < j. We note that [18] and [20] were referred to in [21] . 



1.3 Finite Sequences via Laurent polynomials 

To study finite sequences, we replaced Laurent series in x^ 1 by Laurent polynomials 
D[x~ l ,x] in [18], [20]; for a succinct overview of [20], see [16]. Unfortunately, x~ x D[x~ 1 } 

*In |25j . an element of Ann(s) with minimal degree was called 'a characteristic polynomial' of s. 
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does not become a -D[x]-module, but we can still define the notions of annihilating and 
minimal polynomials; see Definitions 12.11 13.11 

In this paper, we present a recursive minimal polynomial function, see Section [3j We 
replace the key definition of 'to' of [131 Equation (11), p. 123] by a recursively defined 
'index function'; see Definition 14.11 We then derive a recursive theorem for minimal 
polynomials. Taking reciprocals (see Corollary 14. 10f) leads to a recursive BM theorem (see 
Theorem I5.4p . Our proofs use no more than the absence of zero-divisors, the arithmetic 
of Laurent polynomials and simple induction. 

1.4 The Iterative Algorithms 

Our iterative minimal polynomial algorithm (Algorithm 14. 12j) and version of the BM 
algorithm (Algorithm 15. 6j) follow immediately. Both are relative to any scalar e G D 
(e = 1 was used in [13] whereas e = was used in [18], [20J). Algorithm 15.61 is simpler 
than pi p. 148] — see Remark 15.81 — and unlike the classical BM algorithm, it is division- 
free, cf. [23]. 

The last section discusses the complexity of these two algorithms and does not depend 
on any aspects of the classical BM algorithm. We give an upper bound for the sum of 
the linear complexities of s, which is tight if s has a perfect linear complexity profile, 
Corollary 16.31 This implies that the number of multiplications for Algorithms 14.121 and 
15.61 is at most 3|_n 2 /4j (Theorem 16.51) and improves the bound of |_3n 2 /2j given in [TBI 
Proposition 3.23]. Over a field F, this reduces to 2[n 2 /A\ (if we ignore divisions in F). 
We also include some remarks on the average complexity. 

1.5 Extensions and Rational Approximation 

Let s = (si, . . . , s n ) E D n be a finite sequence and = (si, . . . , Sj) have 'generating 
function' s^} = Six -1 + . . . + SjX~i for 1 < j < n. We write 

(i) for the minimal polynomial of s^' of Theorem 14.51 with degree Lj 

(ii) for the 'polynomial part' of \]P> ■ s, which was evaluated in [T8] . 
Then deg(i/ (i) ) < Lj and 

/i (3) -SE0mod^ H (1) 
for 1 < j < n. Remarkably, our formula for 

u U) = A' • x max{e ' 0} - A,- • x max{ - e ' 0} 

is identical to Theorem ( 14. 5 j) with \x replaced by v, where e = ej_i = j — 2Lj_i. The only 
difference being that v is initialised differently. 

It is well-known that the BM algorithm also computes rational approximations. We 
could also extend Algorithm 15.61 to compute v^>* iteratively, obtaining deg(u^^) from 
Equation (CQ) and Lj (when deg(u^) ^ 0). In this way, Algorithm 15.61 could also be used 
to decode not just binary BCH codes, but Reed-Solomon codes, errors and erasures, clas- 
sical Goppa codes, negacyclic codes and can be simplified in characteristic two. As this 
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has already been done more simply using rational approximation via minimal polynomials 
in [19] and [201 Section 8], we will not compute u^* iteratively here. An extension of 
Theorem 14.51 to rational approximation will appear in |17j . 



We thank an anonymous referee for a simpler proof of Lemma 16.31 A preliminary 
version of this work was presented in May 2010 at Equipe SECRET, Centre de Recherche, 
INRIA Paris- Rocquencourt, whom the author thanks for their hospitality. 

2 Preliminaries 

2.1 Notation 

Let N = {l,2,...},uGN and let D denote a commutative, unital integral domain with 
1^0. For any set S containing 0, S x = S \ {0}. We say that / £ -D[x] x is monic 
if its leading term is 1. The reciprocal of is and for / £ _D[a;] x , its reciprocal is 
f*(x) = x des ^'f(x~ 1 ). We often write / = x e g + h for f(x) = x e g(x) + h(x), where e £ N 
and g, h £ D[x]. 

2.2 Linear Recurring Sequences 

By an infinite sequence s = (si, S2, ■ ■ •) over D, we mean a function s : N — > D i.e. an 
element of the abelian group D n . The standard algebraic approach to 'linear recurring 
sequences' is to study _D N using s(x) = J2j>i s j& e ^[N] as 111 [12]) [23]) which requires 
reciprocal polynomials and complicates their underlying theory. 

We recall the approach of [18]. We begin with the standard -D[[x -1 ]-module i.e. acting 
on itself via multiplication. (This also makes _D[[a; _1 ] as a -D[x]-module.) Next we let D[x] 
act on by projecting the product / £ D[x] and s = J2j>i s j x ~^ on ^° ^ ne ^ TS ^ 

summand of = © D[x]\ i.e. 



denote the annihilator ideal of s; / is an annihilating polynomial or an annihilator of s if 
/ £ Ann(s). We will often write f o s for / o s and Ann(s) for Ann(s). 

We say that s satisfies a linear recurrence relation if it is a torsion element i.e. if 
Ann(s) 7^ (0) [T8"l Section 2], [T8l Section 2]. In other words, s satisfies a linear recurrence 
relation if for some / £ D[x] with d = deg(/) > 




One checks that this makes x 1 ]] into a D[x]-module. Let 



Ann(s) = {f E D[x] : /os = 0} 



(f-s) d - 



-3 ~ 



for d + 1 < j. 



(2) 
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In this case, / G Ann(s) x . If we expand the left-hand side of Equation (T5j) we obtain 

foSj-d H h fdSj = for d + 1 < j. 

When / d = 1, we can write = —(fo$j-d H — • + fd-i s j-i) for j > d + 1 and s is a linear 
recurring sequence. For the Fibonacci sequence s = 1, 1, 2, . . . for example, x 2 — x — 1 £ 
Ann(s). 

We say that / G Ann(s) x is a minimal polynomial of s if 

deg(/) = min{deg(sO : 9 e Ann(s)}. 

As Ann(s) is an ideal, we easily see that s has a unique monic minimal polynomial 
which generates Ann(s) when D is a field. More generally, it was shown in [6] that if 
Ann(s) ^ {0} then 

(i) if D a factorial then Ann(s) is principal and has a primitive generator 

(ii) if D is potential, then Ann(s) has a unique monic generator. 

In [6], we called D potential if -D[[a;]] is factorial. It is known that principal ideal do- 
mains and F[xi, . . . ,Xk] are potential, but not all factorial domains are potential; see [61 
Introduction] and the references cited there. 

2.3 Finite Sequences 

We now adapt the preceding definition of Ann(s) to finite sequences s G D n by using 
Laurent polynomials. This also leads to a less complicated theory of their annihilating 
and minimal polynomials. 

First, let s = (si, . . . , s n ) and s G D[x] be s(x) = s±x + • • • + s n x n . We will also 
abbreviate s(x _1 ) = six -1 + • • • + s n x~ n to s, so that s_j = s _j for — n < j < —1. In 
the following definition, multiplication of / G D[x] and s G is in the domain of 

.D-Laurent polynomials D[x, x^ 1 ]. 

Definition 2.1 (Annihilator, annihilating polynomial) (fJM Definition 2.7, Propo- 
sition 2.8]) If s G D n , then f G D[x] is an annihilator (or a characteristic polynomial) of 
s if f = or d = deg(/) > and 

(f ■ a)*-, = ford+l<j <n (3) 

written f G Ann(s). 

If we expand the left-hand side of Equation (j3J), we obtain 

foSj-d H h fdSj = for d + 1 < j < n. 

Any polynomial of degree at least n is vacuously an annihilator of s. For 1 < i < n, we 
write s^' for (si, . . . , Sj). If n > 2, then Ann(s) C Ann(s^ n_1 - 1 ). If d < n — 1 and the 
leading term of / is a unit, we can make / monic and generate the last n — d terms of s 
recursively from the first d terms. 

The following definition is a functional version of [18, Definition 2.10]. 
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Definition 2.2 (Discrepancy Function) We define A : D[x] x x D n — > D by 

s) = (/ • s)deg(/)-n- 

Thus A(/, s) = X]fc=o f k s i-d+k where d = deg(f). Clearly for n > 2, / G Ann(s) x if and 
only if / G Amity™" 1 )) x and A(s, /) = 0. 

For any s\ G D x and constant polynomial /, A(/, (si)) = si. If s has exactly n— 1 > 1 
leading zeroes, s n ^ and / = 1, then / G Ann^" --1 )), but A(/, s) = s n ^ 0. Let s be 
such that s( n_1 ) is geometric with common ratio r G -D x , but s is not geometric. In this 
case, we have x — r G Ann(s^"~ 1 -') but A(x — r, s) ^ 0. 

If s G D n is understood, we write A n (/) for A(/, s); if / is also understood, we simply 
write A n . It is elementary that if 1 < i < n — 1, then (/ • s^)h^(/)-. = (/ • s)deg(/)-i- 

3 Minimal Polynomials 

A notion of a 'minimal polynomial' of a finite sequence over a field seems to have first 
appeared in [24, Equation (3.16)], where the minimal polynomial of a finite sequence was 
defined in terms of the output of the BM algorithm of [13J. We were unaware of [21] 
and adopted a more basic and more general approach which is independent of the BM 
algorithm. In particular, the approach introduced in [TS] is independent of linear feedback 
shift registers and connection polynomials. For us, a sequence may have more than one 
minimal polynomial. 

Definition 3.1 (Minimal Polynomial) ( 773[ Definition 3.1]) We say that f G Ann(s) 
is a minimal polynomial of s G D n if 

deg(f) = min{deg(» : g G Ann(s) x } 

and let MP(s) denote the set of minimal polynomials of s. 

As any / G D[x] of degree at least n annihilates s G D n , MP(s) 7^ 0. We do not require 
minimal polynomials to be monic. For any d G D x , d G MP(0, . . . , 0); if s\ ^ and 
deg(/) = 1 then / G MP((si)) since D has no zero divisors. 
The linear complexity function L : D n — > {0} U N is 

L(s) = deg(/) where / G MP(s). 

We will also write L ra for L(s) when s is understood and similarly Lj = L(s^) for 1 < 
j < n. For fixed s, L is clearly a non-decreasing function of i. 

It is trivial that if s is infinite and satisfies a linear recurrence relation, then 

Ann(s) C p| Ann(s {n) ). 

n>l 

When D is a field, a minimal polynomial of a linear recurring sequence t is usually defined 
as a generator of the ideal Ann(i); see [121 Chapter 8]. 
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Proposition 3.2 (Cf. {25}) Letn>l,se D n and f £ MP(s) be momc. Define t £ D N 
to be the extension of s by f. If Ann(t) is principal then Ann(t) = (/). 

Proof. Let Ann(t) = (g) say. As / £ Ann(t) x , Ann(t) ^ (0). If g ^ generates Ann(t) 
then g\f and deg(/) > deg(g). Since g £ Ann(s), we cannot have deg(g) < deg(/), for 
then / £" MP(s). So deg(g) = deg(/) = ti say. Equating leading coefficients shows that 
gd is a unit of D and so we can also assume that g is monic. We conclude that f = g and 
that Ann(t) = (/). ■ 

It will follow from Proposition 15.21 below that the (unique) minimal polynomial of [21] 
obtained from the output of the BM algorithm is an example of a minimal polynomial as 
per Definition 13.11 



3.1 Exponents 

The following definition will play a key role in defining our recursive minimal polynomial 
function. The reason for choosing the term 'exponent' will become clear below. 

Definition 3.3 (Exponent Function) For n > 1, let the n th exponent function e n : 
-D[a;] x — > Z be given by 

e n (/)=n + l-2deg(/). 

The following lemma is the annihilator analogue of [T3l Lemma 1] and will be used 
for proving minimality. We include a short proof to keep the presentation self-contained. 
Commutativity and the absence of zero-divisors are essential here. 

Lemma 3.4 Lemma 5.2]) Let n > 2, f £ Ann(s (n - 1} ) x and A n (f) ^ 0. 

(i) For any g £ Ann(s) x ; deg(#) >n- deg(f) = e n _i(/) + deg(/). 

(ii) IfheMP(s) then deg{g) > max{e„,_i(/i), 0} + deg(h). 

Proof. Put A = A n (/). We can write / • s = N + A • x d ~ n + P where d = deg(f), 
Ni = for d — n < i < — 1 and P £ D[x]. Likewise, write g ■ s = M + Q and e = deg(g), 
with Mi = for e - n < i < -1 and Q £ D[x\. Let h £ D[x] beh = f- Q- g- P = 
g-N-f-M + g-A- x d ~ n . By construction (g-N-f- M) d+e _ n = 0, so h d+e _ n = g e -A^Q 
and d + e — n > 0. The last sentence is immediate since Ann(s) C Ann(s^ n_1 ^) and 
max{e(/), 0} + deg(/) = max{n - deg(/), deg(/)}. ■ 

If s has exactly n — 1 > 1 leading zeroes and s n ^ 0, then 1 £ MP(s'" -1 ') and so 
L(V n-1 )) _ L(si) = 1. Lemma 13.41 implies that L(s) > n and since any polynomial of 
degree n is an annihilator, L(s) = n. For a geometric sequence s( n_1 ) over L> with common 
ratio r £ D x such that s is not geometric, we have x — r £ MP(s'" -1 ') and A(x — r, s) 7^ 0. 
By Lemma [3.41 we have L(s) > n — 1. We will see that L(s) = n — 1. 

If £ MP(s (i) ) for 1 < j < n-1 and e n _i = e^^/^ 1 )) > then L n > L n _i+e„_i 
by Lemma 13.41 and inductively, 

L„>L 1+ J2 'V i(/ J ')- 

e J _ 1 (/U))>0 
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Theorem 14.51 will imply that this is actually an equality. 



4 A Recursive Minimal Polynomial Function 

We will define a recursive minimal polynomial function fi : D n — > D[x\. But first we need 
the following function (which assumes that fi : D n ~ 1 — > D[x] has been defined). We also 
set A = 1. 

4.1 The Index Function 

Definition 4.1 (Index Function) Let n > 1 and s G D n . We set /i<-°) — 1 (so that 
Ai = Ai(//(°)) = sj and e = 1. Suppose that for 1 < j < n - I, E MP(s^) has 
discrepancy Aj +1 and exponent ej. We define the index function 

':{(),. ..,n}^{-l,n-l} 

by 0' = — 1 and for 1 < j < n — 1 

., _ f (j - 1)' i/ Aj = or (Aj j£ and e^ < 0) 
~ \ j - 1 if Aj 7^ and ej_i > 0. 

Thus for example, V = — 1 if s± = and 1' = when si 7^ (since eo > 0). More 
generally, if s has n — 1 > leading zeroes, then (n — 1)' = • • • = 0' = — 1 and n' = n — 1. 

Example 4.2 In Tafr/e i ; 2' = 1' = 0, 4' = 3' = 2 and 5' = 4 and in Table 2, V = and 
4' = 3' = 2' = 1. 

It is trivial that j' < j — 1 for < j < n. We will see that the j for which Aj 7^ 
and > are precisely those j for which Lj = Lj_i + ej_i; the linear complexity has 
increased by e 3 _x. 

The next result is essential. 

Proposition 4.3 For < j < n, Aj/ +i 7^ 0. 

Proof. We have Ao = 1. Inductively, assume that Afc'+i 7^ for all k, < k < j — 1. 
If Aj = 0, then Aj/ +i = A(j_x)/ +1 7^ by the inductive hypothesis. But if Aj 7^ and 
e j-i < 0, then Aj/ +1 = A(j_!)/ +1 7^ by the inductive hypothesis. Otherwise Aj/ +1 = Aj 
since j' = j — 1 and we are done. ■ 

The definition of j' as a maximum aj in [18], [20] required j > 3 and Lj_i > Li. This 
in turn necessitated (i) defining aj separately when n = 1 or (n > 2 and Lj_i = Li for 
1 < j — 1 < n — 1) and (ii) merging the separate constructions of minimal polynomials 
into a single construction. Further, [T8J Proposition 4.1] showed that the two notions 
coincide, and required that L_ x = L = 0. 
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4.2 The Recursive Theorem 

Our goal in this subsection is to define a recursive function 

/2:D n ^ D[x] 

such that for all s £ D n , fi(s) £ MP(s). When s is understood, we will write for 
fj,(s^'). A minimal polynomial of s^ 1 ' is clear by inspection, so we could use n = 1 as the 
basis of the recursion, but with slightly more work, we will see that we can use n = as 
the basis. 

Definition 4.4 (Basis of the Recursion) Recall that 0' = —1 and A = 1. Let e £ D 

be arbitrary but fixed and s £ D n . We put /i* -1 - 1 = fi(s, — 1) = e and iv>°> = /i(s, 0) = 1. 

Thus the exponent of fi^ is e = 1 and Ai = s\. It follows from Proposition 14.31 and 
Lemma 13.41 that 

Lj > Lf +1 > max{j' + 1 — Ly, Lj>} > j' + 1 — Ly. 

A key step in the proof of Theorem 14.51 is that the first and last inequalities are actually 
equalities. 

Notation To simplify Theorem I4.5[ we will use the following notation: 

(i) /i' = fi o ' (where o denotes composition) 

(ii) L/ = deg ofj! 

(iii) A' = A o (+1) o ' o (— 1), where ±1 have the obvious meanings. 
Thus 

= yP\ L; = Lf and AJ = A(//« s^) = • a) Lfc _ fc _! 
where k = (j — 1)'. 

The definition of /x : D n — > D[x] in the following theorem was motivated in [20]: given 
a minimal polynomial function /j : D n ~ l — > D[x], the theorem constructs \x : D n — > D[x] 
such that for all s £ D n , /i(s) £ MP(s). We note that to verify that fi(s) £ Ann(s), we 
first need deg(/x(s)). 

Theorem 4.5 f(7/. [Tffl . Offi Section 9.6]) Let n > 1 and s £ -D n and assume the initial 
values of Definition \4-4 Define recursively by 



/i (B) 



/i (n - 1} ^/A n = 

A; • x max K-i,o} ^(n-i) _ An . x m^{-e n . u o} ^/(n-i) otherwise. 

If A n = 0, clearly fi^ £ MP(s), L n = L n _x and e n = e n _i + 1. // A n 7^ iaen 

(%) deg(//< n >) = max{e n _ 1 , 0} + L n _! = n' + 1 - V n 
(11) fiW £ MP(s) 
fra) e n = -|e n _i| + 1. 
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Proof. We prove (i) by induction on n. For n — 1, fj,^ 1 ' = x — Ai • e and max{eo, 0} + 
L = 1 = deg(/^W). As for the second equality, 1' = since e = 1 > and 1' + 1 — L[ — 
1 = deg(yU ( ' 1 ^). Suppose inductively that n > 2 and that (i) is true for 1 < j < n — 1. 

If e n _i < then = A' n ■ ^ n ~^ - A„ • a;" 6 "- 1 j/"- 1 ). We have to show that 
-e„_i + L^_ x < L„_i. But -e n _i + is 

-(ra - 2L„_!) + U n _i = -n + 2L„_i + (n - 1)' + 1 - L n _ x = L„_! + ( n - 1)' + 1 - n 

by the inductive hypothesis and we know that (n — 1)' < n — 2 for all n > 1. Thus 
— e n _i + L^_ 1 < L n _i and e„_i < implies that deg(/i^) = L n _i. 

Suppose now that e„_! > 0. We have to show that deg(fi^) = e n _x + L n _x i.e. that 
e n _i + L n _i > L'^. But e n _! + L n _i = n - L„_! > L n _i since e n _i > and L n _i > L / „_ 1 
as L is non-decreasing. Hence e n _i + L n _i > L^_ x and deg(/i^"^) = max{e n _i, 0} + L n _i. 

To complete (i), we have to show that deg(/^ n )) = n' + 1 — L' n if A n ^ 0. But if 
e«-i > 0, then n' — (n — 1)' by definition and we have seen that deg(/i^) = L„_i, so the 
result is trivially true in this case. If e„_i > 0, then deg(/i^) = n — L n _i and n' = n — 1 
by definition. Hence deg(yU^ n - ) ) = n' + 1 — L' n and the induction is complete. 

(ii) We first show inductively that fj,^ E Ann(s). If n = 1 and Ai ^ 0, then /i^ = 
x — Ai • e E MP(sW). Suppose inductively that n > 2, (ii) is true for 1 < j < n — 1 and 
A n 7^ 0. From Part (i), d = deg(/i ( ™)) = max{e„_i, 0} + L n _i > 0. In particular, ^ 0. 
We omit the proof that E Ann(s ( - n_1 ^), showing only that (jj^ ■ s)d- n — 0. 

Put fx = fi^-V, fi' = ^ n - l \ e = e n _i, L = L n _! and V = L' n _ v If e < 0, then d = L 
and 

(/i (n) • = A; • (p ■ s) L _ n - A n • (x- e fj,' ■ s) L . n = A' n ■ A n - A n • A; = 

since L — n + e = — L = L' — (n — 1)' — 1 and so (// ■ s)L-n+e = A^. Ife>0, d = n — L 
and 

■ s) d _ n = ■ s)_ L = a; • (x e /i • s)_ L - A n ■ (// ■ s)_ L = a; ■ a„ - a„ • a; = 

since — L — e = L — n and — L = L' — (n — 1)' — 1. Thus /i 1 -™) G Ann(s). 

We complete the proof of (ii) by showing that fj,^ E MP(s). We know that /j,^ G 
MP(s^ 1 - ) ). For n > 2, we know from (i) that deg(^ n ^) = max{e n _i,0} + L„_i which is 
max{e n _i(/i' n_1 '), 0} + deg(^ n ~^) and therefore // n ) G MP(s) by Lemma [3^1 

(iii) We also prove this inductively. Suppose first that n — 1 and A x 7^ . Then 
ei(/i (1) ) = 2 - 2 • 1 = and since e > 0, e x = -e + 1 = 0. Let n > 2 and A„ 7^ 0. If 
e n -i < 0, then e n (/i (n) ) = n + 1 - 2L„ = n + 1 - 2L n _i = e„_i + 1 = e„, and if e n _i > 
then e(/i (n) ) = n + 1 - 2(n - L n _i) = 1 - n + 2L n _i = 1 - e„_i = -| e n-i| + 1 = e n . ■ 
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Remarks 4.6 1. For A n ^ and e = e n _i 

K ■ /^ (n_1) - A « • z~y (n_1) if e < 
A; • x +e /i("^ 1 ) - A n ■ fit"- 1 '* ife>0. 



/i (B) 



7/s /ias precisely n — 1 > leading zeroes, Theorem \4-5\ yields \x 



(n) _ ~n 



X — £. 



5. VFe note t/iat deg(/x^) = n' + 1 — L' n is trivially true if A n = or if n = (if we 
set L' = 0). We can also prove that deg(/i( n >) = ri + 1 - L'„ itsm<? Lemma \3.4\ (as 
in |5j/ ; JT^I and Jffll) but prefer the simpler, direct argument used in Theorem \4-5[ 

4- As noted in JT8f . we can use any /z^ instead of ^ (with appropriate powers of x) 
as long as A fe+1 ^ and k < n — 1), but minimality is not guaranteed. 

4.3 Some Corollaries 

Let n > 2, s G D n and 2 < j < n. Then j is a jump point of s if Lj > L,_i. We write 
J(s) for the set of jump points of s. We do not assume that J(s) 7^ 0. Evidently, the 
following are equivalent: (i) j G J(s) (ii) e 3 _i > (hi) j' = j — 1 (iv) Lj = j — L,-_i > Lj. 
The following is clear. 

Proposition 4.7 For a// s G D n , L n = Li + X^eJ(s) e i-i- 

Proof. Simple inductive consequence of Theorem 14. 5( i). ■ 

An important consequence of Theorem I4.5( i) is the following well-known result. 
Corollary 4.8 For any s G D n , L n = ri + 1 — L' n . 

Next we use the index function to simplify the proof of [HI Proposition 4.13]. 

Proposition 4.9 (Cf. JXfj Let s G D n . Iff G D[x) and deg(f) < -e n , then ^ + 
f'ri [n) G MP(s). In particular, if e n < ffcen |MP(s)| > 1. 

Proof. We will omit scripts. By Corollary 14. 8[ L = n' + 1 — L', so that 

deg(/V) < -e + L' = 2L - n - 1 + (n' + 1 - L) = L + ri - n < L - 1 (4) 
since ri < n — 1, so deg(/i + /'//) = L. Let L — n < j < —1. Now 

(0* + /V) ■ S)i = (A* " «)i + (/V • *)i = (/V ■ 
Inequality (jl]) gives deg(/'/x') - n' < L - n, so we are done. ■ 

It is convenient to introduce p : {0, . . . , n — 1} — > N given by 



1 if J = 

j — j' otherwise. 
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It is clear that if A n = 0, then p(n) = p(n — 1) + 1. We set 

^( n ) * = * o fx(s,n) 

where * denotes the reciprocal function and similarly for fixed s, fx'^® * = * o fx(s,n') . 

Corollary 4.10 If A n ^ then 

(i) ^ * = A; • //C"- 1 ) * -A n - x p( - n -^ /i'^- 1 ) * 

(ii) p(n) = p(n — 1) + 1 «/e„_i < and p(n) = 1 otherwise. 

Proof. Put /i = /x^- 1 ), e = e n _i, L = L n _i, p = p(n - 1), // = /Z^" 1 ) and V = L' n _ v If 
e < 0, then fr® = A' n ■ fx — A n ■ x~ e fx' and L n = L. Then 

= x^fx^ix- 1 ) =A' n -x L fx(x- 1 ) - A n ■ x L+e fx'{x- 1 ) 
= A' n - fx* - A n - x L+e ~ L ' fx'* = A' n - fx* - A n - x p fx'* 

since L + e — L' = n — L — 17 = n — 1 — {n — 1)' = pby Corollary 14.81 If e > 0, 
fjS n ) = A' n ■ x e fx — A n • fx' and L n = n — L, so 

^W* = x Ln ^ n \x- 1 ) = A' n -x n - L - e fx(x- 1 )-A n -x n - L Li\x- 1 ) 
= A' n -fx*-A n - x n - L ~ L ' fx'* = A' n -fx*-A n -x p fx'* 

since n — L — e = L and n — L — L' = n — (n — 1)' — 1 = p. The value of p(n) is immediate 
from Corollary 14.81 ■ 



4.4 The Iterative Version 

We could obtain fx^® recursively using Theorem 14.51 but it is more efficient to obtain it 
iteratively. 

Corollary 4.11 (Iterative Form of fx) Let n > 1, s G D n and e G D. Assume the 
initial values of Definition ^. 4\ For 1 < j < n, let 



ix® 



fiU-V if A j = 

A', • x^Acj-uoy^U-i) _ a . a .max{-%_i,o} /i 'y-i) otherwise. 



Then fx® G MP(s (i) ). Further, if Aj = 0, then fx® = fx'®- 1] , A' j+1 = A£ and 
ej-_i + 1. IfAj^O then 

(a) ife^ x < then fx'® = fx'®- 1 ^ and A' j+1 = A' rj 

(b) but ifej-i > then fx'® = fx®- 1] and A' j+1 = Aj 

(c) ej = — |ej-_ x | + 1. 
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In other words, when Aj ^ 0, 

A' • - Aj ■ x- e n'( j -V if e = ej_i < 



A'j • x +e /i (j - 1} - Aj ■ n'ti- 1 *) otherwise. 

We are now ready to derive an algorithm to compute a minimal polynomial for s e D n 
from Corollary 14.1 1[ The initialisation is clear. Let 1 < j < n — 1. From the definition of 

Qj-i = ej_i(//^ -1 '), we have Ly_i = and so 



^- e j-i 

2 



k+ 
k=0 



J+ e j-l ■ 



For the body of the loop, we next show how to suppress j — 1 and j. When Aj = 0, we 
ignore the updating of ^~ x \ n and A', but ej = e 3 -_i + 1. But when Aj ^ 0, (a) 



A'j • //W- 1 ) - Aj • x-yfj" 1 ) if e < 



A$ • x +e //^'-^ - Aj • //'(j" 1 ) otherwise. 

and (b) we need to update fj,^~^ and Aj when ej_i > 0; since (a) will overwrite 
once we have suppressed j, we keep a copy t of fjP~^ when ej_i > 0, so that the updating 
is fj,V' = t and A' +1 = Aj. For (c), we have ej = ej_i + 1 if ej_i < and = — ej_i + 1 
otherwise. Now only the current values of the variables appear and so we can suppress 
scripts. The following algorithm (written in the style of [10J ) is now immediate. 

Algorithm 4.12 (Iterative minimal polynomial) 

Input: n > 1, s G D and s = (si, . . . , s n ) E D". 
Output: fi £ MP(s). 



{e := 1; // := e; A' := 1; \x := 1; 
FOR j = 1 TO n 

IF A^0 THEN {IF e < THEN // := A' • /x - A • x~V/ 

ELSE {t := /i; 

/i:= A' ■ x e fi - A ■ //; 
yt! ■= t; A' := A; 
e := -e}} 

e := e + 1} 
RETURN (yu)} 

Example 4.13 Tables 1 and 2 give the values of e and A, and outputs \i, y! for the 
binary sequence (1,0,1,0,0) of FT3f and for the integer sequence (0,1,1,2), with e = in 
both cases. 
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Table 1: Algorithm MP with e = 0, input (1,0,1,0,0) 6 GF(2) 5 



3 


0,_! 








1 


1 


1 


X 


1 


2 








X 


1 


3 


1 


1 


x 2 + 1 


X 


4 








x 2 + 1 


X 


5 


1 


1 


x 3 


x 2 + 1. 



Table 2: Algorithm MP with e = 0, input (0, 1, 1, 2) G Z 4 



J 


e i-i 


A, 






1 


1 





1 





2 


2 


1 


x 2 


1 


3 


-1 


1 


2 

X — X 


1 


4 





1 


x 2 — x — 1 


x — 1. 



5 A Recursive BM Theorem 
5.1 Reciprocal Pairs 

Definition 5.1 (Reciprocal Pair) Let n > 1 and s G -D n . VKe say t/iat (g,£) G -D[x] x 
[0, n] is a reciprocal pair for s, written (g,£) G RP(s), if go ^ 0, d = deg(g) < t and 
£ + 1 < j < n implies that 

(g -s)j = g Sj + giSj-i H h g d Sj- d = 0. (5) 

For n>2, the n th discrepancy of (g,£) G RP(s ( ^ n ~ 1 ^) is A n (g,£) = (g ■ s) n = J2k=o9 kSn ~ k ' 
and (g, £) G RP(s) if and only if A n (g, £) = 0. Note that £ is often used instead of deg(g) 
in the sum of Equation (jHJ) and in the discrepancy [13]; we prefer to use deg(o) since g is 
then a genuine polynomial. 

Proposition 5.2 Let s G -D n , / G -D[x] and d = deg(/) > 0. Then for d + 1 < j < n, 

(f ■ l)d-j = (f*s)j. Thus if f G Ann(s) x , (/*, d) G RP(s) and if (g,£) G RP(s) ; iaen 
x i-de g (g)^* E Ann(s) x . 

Proof. We have f*{x) = x d f(x~ 1 ), so /(x _1 ) = x~ d f*(x) and /(x) = x d f*(x^ 1 ). Hence 

(/(x)-^_ J = (r(x- i )-s)_, = (r-s) r ■ 

In particular, A^™" 1 )) = A^™" 1 )*, deg^™" 1 ))) and using A n in two ways causes no 
confusion. 



14 



5.2 Shortest Reciprocal Pairs 

Definition 5.3 (Shortest Reciprocal Pair) Let s G D n . We say that a reciprocal pair 
(g,£) for s is shortest, written (g,£) G SRP ; if x l ~ de ^g* G MP(s). 

Note that when x £ - de ^ 9) g* G MP(s), £ = deg(a^- deg(9) a*) = L(s) since # 7^ 0. We define 
the index function exactly as in the minimal polynomial case and set 

e n (f? (n) ,L n ) = n + l-2L n . 

Theorem 5.4 (Recursive BM) Let n > 1 and s G -D n . Pui f/ -1 ) = £ and A = 1. 
Define g^ recursively by 




A' n ■ a; max { e «-i.o} _ A n ■ x max {- e »-i- > g'C* 1 " 1 ) otherwise. 



If A n = ; clearly g^ G SRP(s) ; L n = L n _x and e n = e n _i + 1. // A n 7^ £nen 

ft) L n = max{e n _i, 0} + L n _i —n' + l — L' n 
(ii) a (n) G SRP(s) 
(Hi) e n = -|e n _i| + 1. 

Proof. We suppose that A n ^ 0. Let /i^" 1 ) = x ^n-i-de S ( e ^) g (n-i)* G MP^™" 1 )) 
by Proposition E2J Now let G MP(s) be as in Theorem 14.51 Further, L n = 
max{e„_i, 0} + L„_i and e n = n + 1 - L„ = -|e n _i| + 1. By Corollary 14.101 /i (ri) * = a (n) 
and (f?( n ),L n ) G SRP(s), which completes the proof. ■ 



5.3 Iterative BM 

As before, it is convenient to write g'^ = g( n \ 

Corollary 5.5 (Iterative BM) Let n > 1, s G D n and e G D. Put a (0) = 1, e = I, 
j'°'=£ and Aq = 1. For 1 < j < n, let 



a ( ^ 1} i/ Aj = 

A^. ■ a ( ^ x) - Aj ■ upti-Vg'U- 1 ) otherwise. 



Then G SRP(s^). Further, if Aj = then q'M = g^~ l \ A' j+1 = A' j; Bj = e,-_i + 1 
and p(j) = p(j — 1) + 1. If Aj ^ tnen 

(a) i/e^-i < inen g G) = a'^'" 1 ), A$ +1 = A$ and = p(j - 1) + 1 

(b) but ifej-i > then = g<j~ l \ A' j+1 = Aj and p(j) = 1 

(c) ej = — | e j-il + 1- 
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Table 3: Algorithm BM with e = 0, input (1, 0, 1, 0, 0) £ GF(2) 5 



3 


e i-i 




Pi-l 






1 


1 


i 


1 


1 


l 


2 








1 


1 


l 


3 


1 


i 


2 


1 + X 2 


l 


4 








1 


1 + x 2 


l 


5 


1 


1 


2 


1 


1 + x 2 . 



As for the minimal polynomial case, Corollary 15.51 immediately yields an algorithm. 
The only difference is that we now have a single expression for g^ (which we can factor 
out), we begin with p — 1 and we set p = if (A n ^ and e > 0) — so that we always 
increment p by 1. 

Algorithm 5.6 (Iterative BM) (Cf. [731 Algorithm 2.2]) 

Input: n > 1, s £ D, and s = (s\, . . . , s n ) £ D n . 
Output: (g,L) £ SRP i.e. g ^ and x L ~ de ^g* £ MP(s). 

{e:=l,V :=e:A':=l;p:=l/ e :=l; 
FOR j = 1 TO n 

{A := Et g (e) M 

IF A/0 THEN {t := g; g := A' ■ g - A • xV; 

IF e > THEN {g' := £; A' := A; p := 0; e := -e}} 
p := p + 1; e := e + 1} 

RETURN^, 2^)} 

If D is a field, e = 1 and we make each g monic then Algorithm 15.61 is equivalent to 
the LFSR synthesis algorithm of [T3J p. 124] (replace e by j — 2L, deg(^) by L and relabel 
the variables). 

Example 5.7 Tables 3 gives the values of e, A, p and the outputs g, g' for the binary 
sequence (1,0,1,0,0) of [13]. Table 4 gives similar information for the integer sequence 
(0,1,1,2). In both cases e — 0. 

Remark 5.8 A more complicated BM algorithm over a field (derived from properties of 
Hankel matrices) appears in ^ p. 1^8]. Indeed, the algorithm of f^jj 

(i) does not use the initial values of Corollary \5.5\ but has several initialization steps 

(ii) uses a variable called AL which equals e, but AL is not updated incrementally 
(Hi) uses a variable k(j) defined as in Jffl$ rather than using f and pj = j — j' 
(iv) does not maintain variables g' and A'. 
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Table 4: Algorithm BM with e = 0, input (0, 1, 1, 2) £ Z 4 



J 


e i-i 




Pi-l 






1 


1 





1 


l 





2 


2 


1 


2 


l 


1 


3 


-1 


1 


1 


1 — X 


1 


4 





1 


2 


1 — x — x 2 


1 — X. 



6 Complexity of the Iterative Algorithms 

It is straightforward to show that at most "( 3 ^ +1 ) multiplications in Z) are required for 
Algorithm I4.12[ [18, Proposition 3.23]. In this section we show that this can be replaced 

6.1 The Linear Complexity Sum 

We continue the previous notation: = 1, L = 0, e = 1 and for < j < n, 

A j+ i = A(fi^) and ej = j + 1 - 2Lj. 

The main result of this subsection uses the following lemma. 

Lemma 6.1 For integers u > and t > 1, EjS«+i L^!rJ = ^tu + t 2 . 
Proof. Put w — 2u + 1 + 1. The sum is 



k=0 v 7 k=0 v 

since w — k and w + k + 1 have opposite parity. 



Lemma 6.2 EHi L * < Eti L^J ■ 

Proof. Let us call j > stable if it is even, Lj = | and El=i < Ei=i L^J • Clearly is 
stable, so suppose inductively that 2m > is stable. In particular, L 2u = u and L 2m+ i = u 
independently of A 2tt+1 . If A 2u +2 

^ then L 2u+2 = u + 1 = and we can replace 

u by u + 1. Hence we can assume that A 2m+2 = 0, and that L 2m+1 = ■ ■ • = L 2u+ t = u for 
some maximal t such that 2u + 2 < 2u + 1 < n. If 2-u + 1 = n, we are done since the result 
holds by the inductive hypothesis. 

If 2u + t < n, we show that there is a maximal stable ju < n. First we show that 
if v = 2u + 2t < n, then v is stable. We have L 2u+ t+i 7^ w and so A 2u+ t+i ^ since t 
is maximal. Hence L 2u+t+1 = u + 1. An easy induction shows that L 2u+t+ j = L 2u +t+j+i 
for 1 < j < t i.e. that L„ = L 2u+2t = L 2u+ ( + i = u + t = [^^J • Since 2u is stable, it 
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is enough to show that YTj=2u+i^-'j = X]j=2u+i L^!rJ • The left-hand-side is tu + t(u + t) 
which equals the right-hand side by Lemma [6.1( h). So v is stable. By induction there is 
a maximal stable ju < n - 

If 3m = n i we are done. If j'm < n i write n = 2«-|-t + l + m for < m < £ — 1. It is 
enough to show that Ym=2u+i Li — Sr=2«+i L^J smce 2m is stable. Write the left-hand 
side as 

m m 2u+t—m—l 

^u+t-k + L 2u +i+fc+i + Lj 

fc=0 fc=0 i=2u+l 

The first summand is (m + l)w and the second is (m + l)(it + £). For ^™ =2lt+1 L^J > we 
proceed as in Lemma 16.1( h) using the pairs with indices 2u + £ — k, 2u + £ + /c + 1 for 
fc = 0, . . . , m, while each of the terms in the third summand have Lj = u, which is less or 
equal to the corresponding |_^rJ • ' 

The following Corollary appeared in [5] for n even. 
Corollary 6.3 £™ =1 L t < [(n + 1) 2 /4j . 

Proof. We have £™ =1 [^J = [{n + 1) 2 /4J . ■ 

It turns out that sequences with a perfect linear complexity profile show that the 
upper bound of Corollary 16.31 is tight. Recall that s has a perfect linear complexity profile 
(PLCP) if Lj = L^J for 1 < j < n [24J. (This definition was initially given for binary 
sequences, but by Theorem 14. 5[ it extends to sequences over D.) 

Proposition 6.4 The following are equivalent. 

(i) s has a PLCP 

(ii) for 1 < j < n 

1 if j is even 



e ■ — -\ 

3 [0 otherwise 
(Hi) Aj 7^ for all odd j , 1 < j < n + 1. 

Proof, (i) (ii): Easy consequence of the definitions. 

(i) =>- (iii): If j < n + 1 is odd then Aj ^ 0, for otherwise ^ + 1 = ^ = Lj = hj-i = 

.7-1 
2 ' 

(iii) => (i): Let Aj ^ for all odd j, 1 < j < n + 1. Then si ^ 0, U = 1 and 
ei = 0. If A 2 = 0, then L 2 = Li = 1, otherwise L 2 = max{ei, 0} + 1 = 1, so that L 2 is as 
required. Suppose that j < n is odd and L k = [^"J f° r a U k, 1 < k < j — 1. We have 
Lj = j— Lj_i = j — 3 ~Y- = L^irJ • If J = we are done. Otherwise, if A J+1 = 0, we have 
L j+ i = Lj = |_^jrj = L^J, whereas if A i+1 ^ 0, L,- +1 = j+l-L, = j+l-L^J = L^J- 



It follows that if s has a PLCP, then Y^=i Lj = L( n + 1) 2 /4J . In particular, this is 
true if Aj is always non-zero. Note that Lj < [^-\ does not hold in general: consider 
(0, . . . , 0, 1) G D n where n > 2 for example. 

We do not know if YTj=i Lj = l( n + 1) 2 /4j implies that s has a PLCP. 
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6.2 Worst-case Analysis 



It is now immediate that 



Theorem 6.5 For a sequence of n terms from D, Algorithms U-12\ and 15.61 require at 
most "&\Jj-\ multiplications in D. 

As remarked above, if D is a field then we can divide /i in Algorithm 14.121 and g in 
Algorithm 15.61 by A', making each polynomial monic. If we ignore the number of field 
divisions, this gives at most 2[^J multiplications. We note that an upper bound of 
for the maximum number of multiplications in the BM algorithm appeared in [7J p. 209A]. 



6.3 Average Analysis 

An average analysis of the BM algorithm appeared in [7J Equation (15), p. 209] and 
was based on Proposition 1, loc. cit., which was proved using the BM algorithm under 
the hypothesis that 'there is one formula for a sequence of length zero'. Another proof 
derived from the number of sequences with prescribed linear complexity and prescribed 
jump complexity appeared in [T51 Corollary 1]. 

We give a direct inductive proof of [7J Proposition 1] which is independent of any par- 
ticular algorithm. In particular, Theorem 16.61 applies to Algorithm 14. 121 and to Algorithm 
15.61 One could in principle set up and solve recurrence equations similiar to [7J, Equations 
(9), (10), (11)] to carry out an average analysis of Algorithms 14.121 and 15.61 but we will 
do not do this here. 



Theorem 6.6 Let D 

£ is 



¥„. The number of sequences of length n with linear complexity 




1 

q 2r ■ 




(9-1) 



if I < 
if I = 

if I < I < [n/2\ 
if [n/2\ <£<n 
if £ > n. 



Proof. Put N(n,£) = \{s 6 D n : L n = £}\. It is clear that N(n,£) is as stated for £ < 
or £ > n. We will show by induction on n that N(n, £) is as claimed. Let denote an 
all- zero sequence and n — 1. It is clear that is the unique sequence with Li = and 
that there are q — 1 sequences (si) of complexity 1. Suppose inductively that the result 
is true for sequences of length n — 1 > 1. We consider three cases. 

(a) £ = 0,n. Let £ = 0. Then clearly N(n,£) > 1. If L n (s) = then s (n ~ 1} = by 
the inductive hypothesis since < £ n _i < L n = £ and so N(n,£) = 1. Suppose now that 
£ = n. We show that N(n,£) = q - 1. If s (n ~ 1} = and A n = s n ± then L n = n, 
so N(n,£) > q — 1. Moreover, L n _i < n — 1 and n = L n = max{L n _i,n — L n _i} forces 
L n _i = 0, so s^" -1 ) = and thus N(n, n) = q — 1. 



19 



(b) 1 < I < [n/2\. Suppose first that 21 < n- 1. Then L n _i < L n = £ < [{n - 1)/2J 
and we can apply the inductive hypothesis to any s( n_1 ). If s n is such that A n = for some 
s^- 1 ), then 1 < £ = L„ = L n _x < [(^ - 1)/2J , and we obtain JV(n - l,f) = g 2 ^ 1 ^ - 1) 
sequences in this way. We also have £ < n — £, so £ cannot result from some s( n_1 ) with 
A n ^ 0. Thus N(n,£) = N(n -l,t) = q 2t ~ l {q - 1) as required. 

Suppose now that 2£ = n. Then £ > — 1)/2J . If s„ is such that L n = £ and A„ = 0, 
the inductive hypothesis yields N(n — l,£) = g 2 ( n ~ 1_£ )(g — 1) sequences. There are also 
(g — l)N(n — 1,£) = g 2 ( n_1_ ^)(g — l) 2 sequences resulting from A n ^ 0. Thus 

N(n, £) = N(n -l,£) + (q- l)N(n -1,£), 

and substituting the inductive values and n = 2£ yields the result. 

(c) [n/2\ <£<n. Then (n-1) /2 < £ and max{£, n-£} = £. If s n is such that A n = 0, 
then \_(n — l)/2j < £ = L„_i < n — 1 and we can apply the inductive hypothesis to s^ l \ 
giving N(n-1,£) = g 2 ^- 1 -^)(g- 1) sequences. We also get a sequence of complexity £ if 
A n 7^ and either (i) L n _i = £ or (ii) L n _i = n — £. Since |_(^ — 1)/2J < £ = L n _i < n— 1, 
(i) gives (g — \)N{n — 1,£) = g 2 ( n_1_ ^(g — l) 2 sequences. For (ii), we have 1 < n — £ < 
[(n — l)/2j and so we obtain an additional (g — l)N(n — l,n — £) = g 2(n ~^ _1 (g — l) 2 
sequences. Thus 

N(n, £) = N(n -l,£) + (q- l)N(n -l,£) + (q- l)N(n -l,n-£) 
and on substituting the inductive values, we easily get iV(n, £) = q 2<yn ~ t \q — l) as required. 



Corrigenda 

We take this opportunity to correct some typographical errors in [20] : 
p. 335, 1. 6. delete e(g) + deg g <m. 

p. 336, 1. 2. should read 0{X 2 - X) = ((X 2 -X)o 7"')-3+2 = ~ F'- 2 = 1. p. 336 
line 13 n < m should be m < n. 

p. 343, table for 1,1,2 iterations: C/i-i = —1, C/i_2 = +1- 
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